HP SuperStack Firewall Series Manual de usuario Pagina 188
- Pagina / 214
- Tabla de contenidos
- SOLUCIÓN DE PROBLEMAS
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
188 C
HAPTER
14: N
ETWORKING
C
ONCEPTS
When DES is used for data communications, both sender and receiver
must know the same secret key, which can be used to encrypt and
decrypt the message, or to generate and verify a message
authentication code. 3Com's implementation of DES uses a 56-bit key.
3Com's DES Key must be exactly 16 characters long and is comprised
of hexadecimal characters. Valid hexadecimal characters are 0, 1, 2, 3,
4, 5, 6, 7, 8, 9, a, b, c, d, e, f.
■
Strong Encryption (Triple DES or 3DES)
Strong Encryption, or Triple DES (3DES) is a variation on DES that uses
a 168-bit key. As a result, 3DES is dramatically more secure that DES,
and is considered to be virtually unbreakable by security experts. It also
requires a great deal more processing power, resulting in increased
latency and decreased throughput.
The 3DES Key must be exactly 24 characters long and is comprised of
hexadecimal characters. Valid hexadecimal characters are 0, 1, 2, 3, 4,
5, 6, 7, 8, 9, a, b, c, d, e, f.
■
ARCFour
ARCFour (ARC4) is used for communications with secure Web Sites
using the SSL protocol. Many banks use a 40-bit key ARC4 for online
banking while others use a 128-bit key. 3Com's implementation of
ARCFour uses a 56-bit key.
ARCFourisfasterthanDESforseveralreasons.Firstisthatitisa
newer encryption mechanism than DES. As a result, it benefits from
advances in encryption technology. Second, unlike DES, it is designed
to encrypt data streams, rather than static storage. DES has achieved
much of its popularity because it is well known and has been proven
to be very robust. ARCFour, while theoretically as secure as 56bit DES,
does not have the long history that leads to the wide acceptance by
security professionals.
3Com's ARCFour Key must be exactly 16 characters long and is
comprised of hexadecimal characters. Valid hexadecimal characters
are0,1,2,3,4,5,6,7,8,9,a,b,c,d,e,f.
■
Security Parameter Index (SPI)
The SPI is used to establish a VPN tunnel. The SPI is transmitted from
the remote Firewall to the local Firewall. The local Firewall then uses
the network, encryption and key values that the administrator
associated with the SPI to establish the tunnel.
DUA1611-0AAA02.book Page 188 Thursday, August 2, 2001 4:01 PM
- SuperStack 1
- Firewall 1
- User Guide 1
- 3Com Corporation 2
- 5400 Bayfront Plaza 2
- Santa Clara, California 2
- 95052-8145 2
- ONFIGURING THE 4
- ECHNICAL 10
- EGULATORY 10
- How to Use This 12
- Conventions 12
- Terminology 13
- 14 ABOUT THIS GUIDE 14
- Feedback about this 15
- Registration 16
- Chapter 1 Introduction 17
- NTRODUCTION 19
- Firewall and 3Com 20
- Network Supervisor 20
- Firewall Features 21
- LAN DMZ WAN 22
- Firewall Features 23 23
- Introduction to 25
- Networking (VPN) 25
- NSTALLING THE 27
- Positioning the 28
- Firewall Front Panel 29
- Firewall Rear Panel 31
- Redundant Power 31
- System (RPS) 31
- ETUP FOR THE 35
- Settingupa 36
- Configuring Basic 36
- Configuring Basic Settings 37 37
- Figure 8 Set Password Screen 38
- Figure 9 Set Time Zone screen 38
- Configuring WAN 39
- Figure 11 40
- Figure 12 41
- Configuring the Firewall 41
- Figure 13 42
- Configuring WAN Settings 43 43
- Configuring LAN 44
- Figure 16 45
- Configuring LAN Settings 45
- Confirming Firewall 46
- ETTINGS OF THE 51
- Examining the Unit 52
- Setting the 53
- Administrator 53
- Password 53
- Figure 23 54
- Set Time Window 54
- Setting the Time 55 55
- Changing the Basic 56
- Network Settings 56
- Specifying DMZ 59
- Addresses 59
- Settingupthe 60
- DHCP Server 60
- Figure 26 DHCP Setup Window 61
- 3com.com 62
- Viewing the DHCP 63
- Server Status 63
- Using the Network 64
- Diagnostic Tools 64
- ETTING UP 67
- ILTERING 67
- Filtering Web Sites 70
- Figure 30 Custom List Window 71
- Updating the Web 73
- Blocking Websites 75
- Filtering by User 75
- Figure 33 76
- Consent Window 76
- Filtering by User Consent 77 77
- 192.168.1.254/iAccept.html 77
- 192.168.1.254 77
- SING THE 79
- IAGNOSTIC 79
- Figure 34 80
- View Log Window 80
- Viewing the Log 81 81
- Changing Log and 82
- Alert Settings 82
- Generating Reports 87
- Restarting the 89
- Managing the 90
- Configuration File 90
- Figure 39 91
- Import Window 91
- Upgrading the 92
- Firewall Firmware 92
- Figure 41 93
- Upgrade Window 93
- Figure 44 98
- Services Window 98
- Changing Policy Services 99 99
- ETTING A 100
- Adding and 101
- Deleting Services 101
- Editing Policy Rules 103
- Editing Policy Rules 105 105
- Updating User 106
- Privileges 106
- Establishing an 108
- Authenticated 108
- Management 109
- Using the Firewall 110
- Business Telephone 110
- Automatic 111
- Proxy/Web Cache 111
- Forwarding 111
- Figure 49 112
- Proxy Relay Window 112
- Specifying Intranet 114
- Settings 114
- Figure 52 Intranet Window 116
- Setting Static 117
- Setting up 119
- One-to-One NAT 119
- Setting up One-to-One NAT 121 121
- ONFIGURING 123
- Figure 56 VPN Summary Window 124
- Configuring a VPN 125
- Security 125
- Association 125
- Shared Secret 130
- Configuring the 132
- Firewall to use a 132
- RADIUS Server 132
- Firewall-1 134
- Configuring the IRE 137
- VPN Client for use 137
- Figure 58 139
- VAILABILITY 141
- Configuring High 142
- Availability 142
- Figure 60 143
- High Availability Menu 143
- Configuration 145
- Checking High 146
- Availability Status 146
- Forcing Transitions 148
- Forcing Transitions 149 149
- DMINISTRATION AND 151
- ROUBLESHOOTING 151
- PERATIONS 153
- Activating the Web 156
- Site Filter 156
- Using Network 157
- Access Policy Rules 157
- Ta b le 6 161
- Resetting the 162
- Figure 63 163
- Firmware Upload Window 163
- Direct Cable 164
- Connection 164
- Direct Cable Connection 165 165
- 192.168.1.200 168
- Troubleshooting 170
- Frequently Asked 172
- Questions about 172
- IREWALL AND 173
- ETWORKING 173
- TTACK AND 175
- Intrusion Attacks 176
- Troja n Hor s e 177
- ■ 255.0.0.0 181
- ■ 255.255.0.0 181
- ■ 255.255.255.0 181
- Network Address 182
- Translation (NAT) 182
- Dynamic Host 183
- Protocol (DHCP) 183
- Virtual Private 184
- Network Services 184
- Internet 185
- PPENDICES 191
- NFORMATION 193
- Wichtige 194
- Sicherheitshinweise 194
- Sécurité 195
- Consignes 195
- Importantes de 195
- PPENDIX A: SAFETY INFORMATION 196
- PECIFICATIONS AND 197
- TANDARDS 197
- PECIFICATIONS 199
- Support from Your 202
- Network Supplier 202
- Support from 3Com 202
- Support from 3Com 203 203
- Asia, Pacific Rim 203
- Returning Products 204
- PPENDIX D: TECHNICAL SUPPORT 206
- NDEX 209 209
- NDEX 211 211
- 212 INDEX 212
- REGULATORY NOTICES 213
Relacionado con productos y manuales para Routers HP SuperStack Firewall Series
Routers HP EX495 Manual de usuario
(331 paginas)
(331 paginas)
Routers HP F150 Manual de inicio rápido
(26 paginas)
(26 paginas)
Routers HP Deskjet 6980 Manual de usuario
(32 paginas)
(32 paginas)
Routers HP 10BASE-T Manual de instalación
(104 paginas)
(104 paginas)
Routers HP OfficeConnect Router Series Manual de usuario
(112 paginas)
(112 paginas)
Routers HP JL066AABA Ficha de datos
(12 paginas)
(12 paginas)
Routers HP JG409A#ABB Ficha de datos
(46 paginas)
(46 paginas)
Routers HP JF240A Ficha de datos
(23 paginas)
(23 paginas)
Routers HP JF231A Ficha de datos
(20 paginas)
(20 paginas)
Routers HP JD026A Ficha de datos
(9 paginas)
(9 paginas)
Routers HP JE459A Ficha de datos
(7 paginas)
(7 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.158 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales